@ghentcdh/authentication-vue 0.0.2-9 → 0.1.0

package/README.md

@@ -20,26 +20,51 @@ pnpm add @ghentcdh/auth/vue @ghentcdh/auth/backend
 
 Add following environment variables to the `.env` file.
 
-```
+```bash
       - VITE_KEYCLOAK_HOST=$KEYCLOAK_HOST
       - VITE_KEYCLOAK_REALM=$KEYCLOAK_REALM
       - VITE_KEYCLOAK_CLIENT_ID=$KEYCLOAK_CLIENT_ID
 ```
 
-### Check if a user is logged in
+## Enable authentication
 
-```vue
+Enable the authentication plugin in your `main.ts` file.
 
-<script setup lang="ts">
-  import {useAuthenticationStore} from "@ghentcdh/authentication/vue";
+```typescript
+import { createAuth } from '@ghentcdh/authentication-vue';
 
-  const authenticationStore = useAuthenticationStore();
-</script>
+// Other app initialisation ...o
+
+app.use(
+  createAuth({
+    keycloak: {
+      realm: import.meta.env.VITE_KEYCLOAK_REALM,
+      url: import.meta.env.VITE_KEYCLOAK_HOST,
+      clientId: import.meta.env.VITE_KEYCLOAK_CLIENT_ID,
+    },
+  }),
+);
+
+```
+
+Create auth options 
+
+| Option    | Default | Functionality                                                |
+|-----------|---------|--------------------------------------------------------------|
+| skipAuth  | false   | Skip authentication by default if using HttpRequest function |
+
+## Functions
+
+### User related functions
+
+```typescript
+import { createAuth } from '@ghentcdh/authentication-vue';
 
-<template>
-  <pre>user: {{ authenticationStore.user() }}</pre>
-</template>
+// Get the user
+await getUser();
 
+// Check if the user is authenticated
+await isAuthenticated();
 ```
 
 ### Perform backend requests with the token
@@ -47,20 +72,36 @@ Add following environment variables to the `.env` file.
 ```vue
 
 <script setup lang="ts">
-  import {useHttpStore} from "@ghentcdh/authentication/vue";
+  import { useHttpRequest } from "@ghentcdh/authentication/vue";
 
-  const httpStore = useHttpStore();
+  const httpRequest = useHttpRequest();
 
-  httpStore.post('/api/auth/login', {}).then(response => {
+  httpRequest.post('/api/auth/login', {}).then(response => {
     alert('login ok')
   });
 </script>
 
+```
+
+Additional a parameter can be provided if the authentication should be skipped.
+
+```typescript 
+
+```vue
+
+<script setup lang="ts">
+  import { useHttpRequest } from "@ghentcdh/authentication/vue";
+
+  const httpRequest = useHttpRequest();
+
+  httpRequest.post('/api/skip-auth', {}, {skipAuth: true}).then(response => {
+    alert('login ok')
+  });
+</script>
 
 ```
 
 > TODO list
 > - [ ] Add roles guard to see if routes or parts of the application can be accessed by that user
-> - [ ] Test if it's possible to have public routes
-> - [ ] Add a
+> - [ ] Add whitelisted routes
 > - [ ] Add logout functionality

package/index.d.ts

@@ -1,3 +1,3 @@
-export * from './lib/keycloak.adapter';
-export * from './lib/authentication.store';
-export * from './lib/request.store';
+export * from './lib/createAuth';
+export * from './lib/request';
+export * from './lib/utils';

package/index.mjs

@@ -1,24 +1,24 @@
-import { defineStore as G } from "pinia";
-import { shallowRef as oe, ref as F, watch as ae } from "vue";
-function q(k) {
-  if (!(this instanceof q))
+import { ref as oe, markRaw as ae, watch as se, inject as W } from "vue";
+const F = "GHENTCDH_AUTHENTICATION";
+function $(l) {
+  if (!(this instanceof $))
     throw new Error("The 'Keycloak' constructor must be invoked with 'new'.");
-  if (typeof k != "string" && !O(k))
+  if (typeof l != "string" && !V(l))
     throw new Error("The 'Keycloak' constructor must be provided with a configuration object, or a URL to a JSON configuration file.");
-  if (O(k)) {
-    const r = "oidcProvider" in k ? ["clientId"] : ["url", "realm", "clientId"];
+  if (V(l)) {
+    const r = "oidcProvider" in l ? ["clientId"] : ["url", "realm", "clientId"];
     for (const t of r)
-      if (!k[t])
+      if (!l[t])
         throw new Error(`The configuration object is missing the required '${t}' property.`);
   }
-  var e = this, p, m = [], l, h = {
+  var e = this, f, k = [], m, h = {
     enable: !0,
     callbackList: [],
     interval: 5
   };
   e.didInitialize = !1;
-  var b = !0, w = Y(console.info), A = Y(console.warn);
-  globalThis.isSecureContext || A(
+  var y = !0, b = X(console.info), T = X(console.warn);
+  globalThis.isSecureContext || T(
     `[KEYCLOAK] Keycloak JS must be used in a 'secure context' to function properly as it relies on browser APIs that are otherwise not available.
 Continuing to run your application insecurely will lead to unexpected behavior and breakage.
 
@@ -26,9 +26,9 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
   ), e.init = function(r = {}) {
     if (e.didInitialize)
       throw new Error("A 'Keycloak' instance can only be initialized once.");
-    e.didInitialize = !0, e.authenticated = !1, l = ne();
+    e.didInitialize = !0, e.authenticated = !1, m = ne();
     var t = ["default", "cordova", "cordova-native"];
-    if (t.indexOf(r.adapter) > -1 ? p = M(r.adapter) : typeof r.adapter == "object" ? p = r.adapter : window.Cordova || window.cordova ? p = M("cordova") : p = M(), typeof r.useNonce < "u" && (b = r.useNonce), typeof r.checkLoginIframe < "u" && (h.enable = r.checkLoginIframe), r.checkLoginIframeInterval && (h.interval = r.checkLoginIframeInterval), r.onLoad === "login-required" && (e.loginRequired = !0), r.responseMode)
+    if (t.indexOf(r.adapter) > -1 ? f = D(r.adapter) : typeof r.adapter == "object" ? f = r.adapter : window.Cordova || window.cordova ? f = D("cordova") : f = D(), typeof r.useNonce < "u" && (y = r.useNonce), typeof r.checkLoginIframe < "u" && (h.enable = r.checkLoginIframe), r.checkLoginIframeInterval && (h.interval = r.checkLoginIframeInterval), r.onLoad === "login-required" && (e.loginRequired = !0), r.responseMode)
       if (r.responseMode === "query" || r.responseMode === "fragment")
         e.responseMode = r.responseMode;
       else
@@ -56,7 +56,7 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
     } else
       e.pkceMethod = "S256";
     typeof r.enableLogging == "boolean" ? e.enableLogging = r.enableLogging : e.enableLogging = !1, r.logoutMethod === "POST" ? e.logoutMethod = "POST" : e.logoutMethod = "GET", typeof r.scope == "string" && (e.scope = r.scope), typeof r.acrValues == "string" && (e.acrValues = r.acrValues), typeof r.messageReceiveTimeout == "number" && r.messageReceiveTimeout > 0 ? e.messageReceiveTimeout = r.messageReceiveTimeout : e.messageReceiveTimeout = 1e4, e.responseMode || (e.responseMode = "fragment"), e.responseType || (e.responseType = "code", e.flow = "standard");
-    var i = v(), s = v();
+    var i = w(), s = w();
     s.promise.then(function() {
       e.onReady && e.onReady(e.authenticated), i.setSuccess(e.authenticated);
     }).catch(function(o) {
@@ -65,7 +65,7 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
     var a = Z();
     function c() {
       var o = function(d) {
-        d || (f.prompt = "none"), r.locale && (f.locale = r.locale), e.login(f).then(function() {
+        d || (p.prompt = "none"), r.locale && (p.locale = r.locale), e.login(p).then(function() {
           s.setSuccess();
         }).catch(function(g) {
           s.setError(g);
@@ -73,18 +73,18 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
       }, u = async function() {
         var d = document.createElement("iframe"), g = await e.createLoginUrl({ prompt: "none", redirectUri: e.silentCheckSsoRedirectUri });
         d.setAttribute("src", g), d.setAttribute("sandbox", "allow-storage-access-by-user-activation allow-scripts allow-same-origin"), d.setAttribute("title", "keycloak-silent-check-sso"), d.style.display = "none", document.body.appendChild(d);
-        var y = function(T) {
-          if (!(T.origin !== window.location.origin || d.contentWindow !== T.source)) {
-            var S = E(T.data);
-            U(S, s), document.body.removeChild(d), window.removeEventListener("message", y);
+        var S = function(I) {
+          if (!(I.origin !== window.location.origin || d.contentWindow !== I.source)) {
+            var U = E(I.data);
+            A(U, s), document.body.removeChild(d), window.removeEventListener("message", S);
           }
         };
-        window.addEventListener("message", y);
-      }, f = {};
+        window.addEventListener("message", S);
+      }, p = {};
       switch (r.onLoad) {
         case "check-sso":
-          h.enable ? x().then(function() {
-            L().then(function(d) {
+          h.enable ? H().then(function() {
+            P().then(function(d) {
               d ? s.setSuccess() : e.silentCheckSsoRedirectUri ? u() : o(!1);
             }).catch(function(d) {
               s.setError(d);
@@ -101,14 +101,14 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
     function n() {
       var o = E(window.location.href);
       if (o && window.history.replaceState(window.history.state, null, o.newUrl), o && o.valid)
-        return x().then(function() {
-          U(o, s);
+        return H().then(function() {
+          A(o, s);
         }).catch(function(u) {
           s.setError(u);
         });
-      r.token && r.refreshToken ? (C(r.token, r.refreshToken, r.idToken), h.enable ? x().then(function() {
-        L().then(function(u) {
-          u ? (e.onAuthSuccess && e.onAuthSuccess(), s.setSuccess(), P()) : s.setSuccess();
+      r.token && r.refreshToken ? (x(r.token, r.refreshToken, r.idToken), h.enable ? H().then(function() {
+        P().then(function(u) {
+          u ? (e.onAuthSuccess && e.onAuthSuccess(), s.setSuccess(), K()) : s.setSuccess();
         }).catch(function(u) {
           s.setError(u);
         });
@@ -126,28 +126,28 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
       i.setError(o);
     }), i.promise;
   }, e.login = function(r) {
-    return p.login(r);
+    return f.login(r);
   };
   function R(r) {
     if (typeof crypto > "u" || typeof crypto.getRandomValues > "u")
       throw new Error("Web Crypto API is not available.");
     return crypto.getRandomValues(new Uint8Array(r));
   }
-  function B(r) {
-    return X(r, "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789");
+  function C(r) {
+    return v(r, "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789");
   }
-  function X(r, t) {
+  function v(r, t) {
     for (var i = R(r), s = new Array(r), a = 0; a < r; a++)
       s[a] = t.charCodeAt(i[a] % t.length);
     return String.fromCharCode.apply(null, s);
   }
-  async function W(r, t) {
+  async function M(r, t) {
     if (r !== "S256")
       throw new TypeError(`Invalid value for 'pkceMethod', expected 'S256' but got '${r}'.`);
-    const i = new Uint8Array(await ie(t));
-    return se(i).replace(/\+/g, "-").replace(/\//g, "_").replace(/\=/g, "");
+    const i = new Uint8Array(await ce(t));
+    return ie(i).replace(/\+/g, "-").replace(/\//g, "_").replace(/\=/g, "");
   }
-  function $(r) {
+  function N(r) {
     var t = {
       id_token: {
         acr: r
@@ -156,7 +156,7 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
     return JSON.stringify(t);
   }
   e.createLoginUrl = async function(r) {
-    var t = V(), i = V(), s = p.redirectUri(r), a = {
+    var t = q(), i = q(), s = f.redirectUri(r), a = {
       state: t,
       nonce: i,
       redirectUri: encodeURIComponent(s),
@@ -168,34 +168,34 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
     var n = r && r.scope || e.scope;
     n ? n.indexOf("openid") === -1 && (n = "openid " + n) : n = "openid";
     var o = c + "?client_id=" + encodeURIComponent(e.clientId) + "&redirect_uri=" + encodeURIComponent(s) + "&state=" + encodeURIComponent(t) + "&response_mode=" + encodeURIComponent(e.responseMode) + "&response_type=" + encodeURIComponent(e.responseType) + "&scope=" + encodeURIComponent(n);
-    if (b && (o = o + "&nonce=" + encodeURIComponent(i)), r && r.prompt && (o += "&prompt=" + encodeURIComponent(r.prompt)), r && typeof r.maxAge == "number" && (o += "&max_age=" + encodeURIComponent(r.maxAge)), r && r.loginHint && (o += "&login_hint=" + encodeURIComponent(r.loginHint)), r && r.idpHint && (o += "&kc_idp_hint=" + encodeURIComponent(r.idpHint)), r && r.action && r.action != "register" && (o += "&kc_action=" + encodeURIComponent(r.action)), r && r.locale && (o += "&ui_locales=" + encodeURIComponent(r.locale)), r && r.acr) {
-      var u = $(r.acr);
+    if (y && (o = o + "&nonce=" + encodeURIComponent(i)), r && r.prompt && (o += "&prompt=" + encodeURIComponent(r.prompt)), r && typeof r.maxAge == "number" && (o += "&max_age=" + encodeURIComponent(r.maxAge)), r && r.loginHint && (o += "&login_hint=" + encodeURIComponent(r.loginHint)), r && r.idpHint && (o += "&kc_idp_hint=" + encodeURIComponent(r.idpHint)), r && r.action && r.action != "register" && (o += "&kc_action=" + encodeURIComponent(r.action)), r && r.locale && (o += "&ui_locales=" + encodeURIComponent(r.locale)), r && r.acr) {
+      var u = N(r.acr);
       o += "&claims=" + encodeURIComponent(u);
     }
     if ((r && r.acrValues || e.acrValues) && (o += "&acr_values=" + encodeURIComponent(r.acrValues || e.acrValues)), e.pkceMethod)
       try {
-        const f = B(96), d = await W(e.pkceMethod, f);
-        a.pkceCodeVerifier = f, o += "&code_challenge=" + d, o += "&code_challenge_method=" + e.pkceMethod;
-      } catch (f) {
-        throw new Error("Failed to generate PKCE challenge.", { cause: f });
+        const p = C(96), d = await M(e.pkceMethod, p);
+        a.pkceCodeVerifier = p, o += "&code_challenge=" + d, o += "&code_challenge_method=" + e.pkceMethod;
+      } catch (p) {
+        throw new Error("Failed to generate PKCE challenge.", { cause: p });
       }
-    return l.add(a), o;
+    return m.add(a), o;
   }, e.logout = function(r) {
-    return p.logout(r);
+    return f.logout(r);
   }, e.createLogoutUrl = function(r) {
     if (((r == null ? void 0 : r.logoutMethod) ?? e.logoutMethod) === "POST")
       return e.endpoints.logout();
-    var i = e.endpoints.logout() + "?client_id=" + encodeURIComponent(e.clientId) + "&post_logout_redirect_uri=" + encodeURIComponent(p.redirectUri(r, !1));
+    var i = e.endpoints.logout() + "?client_id=" + encodeURIComponent(e.clientId) + "&post_logout_redirect_uri=" + encodeURIComponent(f.redirectUri(r, !1));
     return e.idToken && (i += "&id_token_hint=" + encodeURIComponent(e.idToken)), i;
   }, e.register = function(r) {
-    return p.register(r);
+    return f.register(r);
   }, e.createRegisterUrl = async function(r) {
     return r || (r = {}), r.action = "register", await e.createLoginUrl(r);
   }, e.createAccountUrl = function(r) {
     var t = _(), i = void 0;
-    return typeof t < "u" && (i = t + "/account?referrer=" + encodeURIComponent(e.clientId) + "&referrer_uri=" + encodeURIComponent(p.redirectUri(r))), i;
+    return typeof t < "u" && (i = t + "/account?referrer=" + encodeURIComponent(e.clientId) + "&referrer_uri=" + encodeURIComponent(f.redirectUri(r))), i;
   }, e.accountManagement = function() {
-    return p.accountManagement();
+    return f.accountManagement();
   }, e.hasRealmRole = function(r) {
     var t = e.realmAccess;
     return !!t && t.roles.indexOf(r) >= 0;
@@ -207,14 +207,14 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
   }, e.loadUserProfile = function() {
     var r = _() + "/account", t = new XMLHttpRequest();
     t.open("GET", r, !0), t.setRequestHeader("Accept", "application/json"), t.setRequestHeader("Authorization", "bearer " + e.token);
-    var i = v();
+    var i = w();
     return t.onreadystatechange = function() {
       t.readyState == 4 && (t.status == 200 ? (e.profile = JSON.parse(t.responseText), i.setSuccess(e.profile)) : i.setError());
     }, t.send(), i.promise;
   }, e.loadUserInfo = function() {
     var r = e.endpoints.userinfo(), t = new XMLHttpRequest();
     t.open("GET", r, !0), t.setRequestHeader("Accept", "application/json"), t.setRequestHeader("Authorization", "bearer " + e.token);
-    var i = v();
+    var i = w();
     return t.onreadystatechange = function() {
       t.readyState == 4 && (t.status == 200 ? (e.userInfo = JSON.parse(t.responseText), i.setSuccess(e.userInfo)) : i.setError());
     }, t.send(), i.promise;
@@ -222,7 +222,7 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
     if (!e.tokenParsed || !e.refreshToken && e.flow != "implicit")
       throw "Not authenticated";
     if (e.timeSkew == null)
-      return w("[KEYCLOAK] Unable to determine if token is expired as timeskew is not set"), !0;
+      return b("[KEYCLOAK] Unable to determine if token is expired as timeskew is not set"), !0;
     var t = e.tokenParsed.exp - Math.ceil((/* @__PURE__ */ new Date()).getTime() / 1e3) + e.timeSkew;
     if (r) {
       if (isNaN(r))
@@ -231,31 +231,31 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
     }
     return t < 0;
   }, e.updateToken = function(r) {
-    var t = v();
+    var t = w();
     if (!e.refreshToken)
       return t.setError(), t.promise;
     r = r || 5;
     var i = function() {
       var a = !1;
-      if (r == -1 ? (a = !0, w("[KEYCLOAK] Refreshing token: forced refresh")) : (!e.tokenParsed || e.isTokenExpired(r)) && (a = !0, w("[KEYCLOAK] Refreshing token: token expired")), !a)
+      if (r == -1 ? (a = !0, b("[KEYCLOAK] Refreshing token: forced refresh")) : (!e.tokenParsed || e.isTokenExpired(r)) && (a = !0, b("[KEYCLOAK] Refreshing token: token expired")), !a)
         t.setSuccess(!1);
       else {
         var c = "grant_type=refresh_token&refresh_token=" + e.refreshToken, n = e.endpoints.token();
-        if (m.push(t), m.length == 1) {
+        if (k.push(t), k.length == 1) {
           var o = new XMLHttpRequest();
           o.open("POST", n, !0), o.setRequestHeader("Content-type", "application/x-www-form-urlencoded"), o.withCredentials = !0, c += "&client_id=" + encodeURIComponent(e.clientId);
           var u = (/* @__PURE__ */ new Date()).getTime();
           o.onreadystatechange = function() {
             if (o.readyState == 4)
               if (o.status == 200) {
-                w("[KEYCLOAK] Token refreshed"), u = (u + (/* @__PURE__ */ new Date()).getTime()) / 2;
-                var f = JSON.parse(o.responseText);
-                C(f.access_token, f.refresh_token, f.id_token, u), e.onAuthRefreshSuccess && e.onAuthRefreshSuccess();
-                for (var d = m.pop(); d != null; d = m.pop())
+                b("[KEYCLOAK] Token refreshed"), u = (u + (/* @__PURE__ */ new Date()).getTime()) / 2;
+                var p = JSON.parse(o.responseText);
+                x(p.access_token, p.refresh_token, p.id_token, u), e.onAuthRefreshSuccess && e.onAuthRefreshSuccess();
+                for (var d = k.pop(); d != null; d = k.pop())
                   d.setSuccess(!0);
               } else {
-                A("[KEYCLOAK] Failed to refresh token"), o.status == 400 && e.clearToken(), e.onAuthRefreshError && e.onAuthRefreshError();
-                for (var d = m.pop(); d != null; d = m.pop())
+                T("[KEYCLOAK] Failed to refresh token"), o.status == 400 && e.clearToken(), e.onAuthRefreshError && e.onAuthRefreshError();
+                for (var d = k.pop(); d != null; d = k.pop())
                   d.setError("Failed to refresh token: An unexpected HTTP error occurred while attempting to refresh the token.");
               }
           }, o.send(c);
@@ -263,7 +263,7 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
       }
     };
     if (h.enable) {
-      var s = L();
+      var s = P();
       s.then(function() {
         i();
       }).catch(function(a) {
@@ -273,7 +273,7 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
       i();
     return t.promise;
   }, e.clearToken = function() {
-    e.token && (C(null, null, null), e.onAuthLogout && e.onAuthLogout(), e.loginRequired && e.login());
+    e.token && (x(null, null, null), e.onAuthLogout && e.onAuthLogout(), e.loginRequired && e.login());
   };
   function _() {
     if (typeof e.authServerUrl < "u")
@@ -282,7 +282,7 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
   function Q() {
     return window.location.origin ? window.location.origin : window.location.protocol + "//" + window.location.hostname + (window.location.port ? ":" + window.location.port : "");
   }
-  function U(r, t) {
+  function A(r, t) {
     var i = r.code, s = r.error, a = r.prompt, c = (/* @__PURE__ */ new Date()).getTime();
     if (r.kc_action_status && e.onActionUpdate && e.onActionUpdate(r.kc_action_status, r.kc_action), s) {
       if (a != "none")
@@ -297,23 +297,23 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
       return;
     } else e.flow != "standard" && (r.access_token || r.id_token) && d(r.access_token, null, r.id_token, !0);
     if (e.flow != "implicit" && i) {
-      var o = "code=" + i + "&grant_type=authorization_code", u = e.endpoints.token(), f = new XMLHttpRequest();
-      f.open("POST", u, !0), f.setRequestHeader("Content-type", "application/x-www-form-urlencoded"), o += "&client_id=" + encodeURIComponent(e.clientId), o += "&redirect_uri=" + r.redirectUri, r.pkceCodeVerifier && (o += "&code_verifier=" + r.pkceCodeVerifier), f.withCredentials = !0, f.onreadystatechange = function() {
-        if (f.readyState == 4)
-          if (f.status == 200) {
-            var g = JSON.parse(f.responseText);
-            d(g.access_token, g.refresh_token, g.id_token, e.flow === "standard"), P();
+      var o = "code=" + i + "&grant_type=authorization_code", u = e.endpoints.token(), p = new XMLHttpRequest();
+      p.open("POST", u, !0), p.setRequestHeader("Content-type", "application/x-www-form-urlencoded"), o += "&client_id=" + encodeURIComponent(e.clientId), o += "&redirect_uri=" + r.redirectUri, r.pkceCodeVerifier && (o += "&code_verifier=" + r.pkceCodeVerifier), p.withCredentials = !0, p.onreadystatechange = function() {
+        if (p.readyState == 4)
+          if (p.status == 200) {
+            var g = JSON.parse(p.responseText);
+            d(g.access_token, g.refresh_token, g.id_token, e.flow === "standard"), K();
           } else
             e.onAuthError && e.onAuthError(), t && t.setError();
-      }, f.send(o);
+      }, p.send(o);
     }
-    function d(g, y, T, S) {
-      c = (c + (/* @__PURE__ */ new Date()).getTime()) / 2, C(g, y, T, c), b && e.idTokenParsed && e.idTokenParsed.nonce != r.storedNonce ? (w("[KEYCLOAK] Invalid nonce, clearing token"), e.clearToken(), t && t.setError()) : S && (e.onAuthSuccess && e.onAuthSuccess(), t && t.setSuccess());
+    function d(g, S, I, U) {
+      c = (c + (/* @__PURE__ */ new Date()).getTime()) / 2, x(g, S, I, c), y && e.idTokenParsed && e.idTokenParsed.nonce != r.storedNonce ? (b("[KEYCLOAK] Invalid nonce, clearing token"), e.clearToken(), t && t.setError()) : U && (e.onAuthSuccess && e.onAuthSuccess(), t && t.setSuccess());
     }
   }
   function Z() {
-    var r = v(), t;
-    typeof k == "string" && (t = k);
+    var r = w(), t;
+    typeof l == "string" && (t = l);
     function i(n) {
       n ? e.endpoints = {
         authorize: function() {
@@ -368,24 +368,24 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
       var s = new XMLHttpRequest();
       s.open("GET", t, !0), s.setRequestHeader("Accept", "application/json"), s.onreadystatechange = function() {
         if (s.readyState == 4)
-          if (s.status == 200 || J(s)) {
+          if (s.status == 200 || G(s)) {
             var n = JSON.parse(s.responseText);
             e.authServerUrl = n["auth-server-url"], e.realm = n.realm, e.clientId = n.resource, i(null), r.setSuccess();
           } else
             r.setError();
       }, s.send();
     } else {
-      e.clientId = k.clientId;
-      var a = k.oidcProvider;
+      e.clientId = l.clientId;
+      var a = l.oidcProvider;
       if (!a)
-        e.authServerUrl = k.url, e.realm = k.realm, i(null), r.setSuccess();
+        e.authServerUrl = l.url, e.realm = l.realm, i(null), r.setSuccess();
       else if (typeof a == "string") {
         var c;
         a.charAt(a.length - 1) == "/" ? c = a + ".well-known/openid-configuration" : c = a + "/.well-known/openid-configuration";
         var s = new XMLHttpRequest();
         s.open("GET", c, !0), s.setRequestHeader("Accept", "application/json"), s.onreadystatechange = function() {
           if (s.readyState == 4)
-            if (s.status == 200 || J(s)) {
+            if (s.status == 200 || G(s)) {
               var o = JSON.parse(s.responseText);
               i(o), r.setSuccess();
             } else
@@ -396,19 +396,19 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
     }
     return r.promise;
   }
-  function J(r) {
+  function G(r) {
     return r.status == 0 && r.responseText && r.responseURL.startsWith("file:");
   }
-  function C(r, t, i, s) {
-    if (e.tokenTimeoutHandle && (clearTimeout(e.tokenTimeoutHandle), e.tokenTimeoutHandle = null), t ? (e.refreshToken = t, e.refreshTokenParsed = D(t)) : (delete e.refreshToken, delete e.refreshTokenParsed), i ? (e.idToken = i, e.idTokenParsed = D(i)) : (delete e.idToken, delete e.idTokenParsed), r) {
-      if (e.token = r, e.tokenParsed = D(r), e.sessionId = e.tokenParsed.sid, e.authenticated = !0, e.subject = e.tokenParsed.sub, e.realmAccess = e.tokenParsed.realm_access, e.resourceAccess = e.tokenParsed.resource_access, s && (e.timeSkew = Math.floor(s / 1e3) - e.tokenParsed.iat), e.timeSkew != null && (w("[KEYCLOAK] Estimated time difference between browser and server is " + e.timeSkew + " seconds"), e.onTokenExpired)) {
+  function x(r, t, i, s) {
+    if (e.tokenTimeoutHandle && (clearTimeout(e.tokenTimeoutHandle), e.tokenTimeoutHandle = null), t ? (e.refreshToken = t, e.refreshTokenParsed = J(t)) : (delete e.refreshToken, delete e.refreshTokenParsed), i ? (e.idToken = i, e.idTokenParsed = J(i)) : (delete e.idToken, delete e.idTokenParsed), r) {
+      if (e.token = r, e.tokenParsed = J(r), e.sessionId = e.tokenParsed.sid, e.authenticated = !0, e.subject = e.tokenParsed.sub, e.realmAccess = e.tokenParsed.realm_access, e.resourceAccess = e.tokenParsed.resource_access, s && (e.timeSkew = Math.floor(s / 1e3) - e.tokenParsed.iat), e.timeSkew != null && (b("[KEYCLOAK] Estimated time difference between browser and server is " + e.timeSkew + " seconds"), e.onTokenExpired)) {
         var a = (e.tokenParsed.exp - (/* @__PURE__ */ new Date()).getTime() / 1e3 + e.timeSkew) * 1e3;
-        w("[KEYCLOAK] Token expires in " + Math.round(a / 1e3) + " s"), a <= 0 ? e.onTokenExpired() : e.tokenTimeoutHandle = setTimeout(e.onTokenExpired, a);
+        b("[KEYCLOAK] Token expires in " + Math.round(a / 1e3) + " s"), a <= 0 ? e.onTokenExpired() : e.tokenTimeoutHandle = setTimeout(e.onTokenExpired, a);
       }
     } else
       delete e.token, delete e.tokenParsed, delete e.subject, delete e.realmAccess, delete e.resourceAccess, e.authenticated = !1;
   }
-  function V() {
+  function q() {
     if (typeof crypto > "u" || typeof crypto.randomUUID > "u")
       throw new Error("Web Crypto API is not available.");
     return crypto.randomUUID();
@@ -416,7 +416,7 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
   function E(r) {
     var t = ee(r);
     if (t) {
-      var i = l.get(t.state);
+      var i = m.get(t.state);
       return i && (t.valid = !0, t.redirectUri = i.redirectUri, t.storedNonce = i.nonce, t.prompt = i.prompt, t.pkceCodeVerifier = i.pkceCodeVerifier, t.loginOptions = i.loginOptions), t;
     }
   }
@@ -435,7 +435,7 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
     }
     t.push("error"), t.push("error_description"), t.push("error_uri");
     var i = r.indexOf("?"), s = r.indexOf("#"), a, c;
-    if (e.responseMode === "query" && i !== -1 ? (a = r.substring(0, i), c = z(r.substring(i + 1, s !== -1 ? s : r.length), t), c.paramsString !== "" && (a += "?" + c.paramsString), s !== -1 && (a += r.substring(s))) : e.responseMode === "fragment" && s !== -1 && (a = r.substring(0, s), c = z(r.substring(s + 1), t), c.paramsString !== "" && (a += "#" + c.paramsString)), c && c.oauthParams) {
+    if (e.responseMode === "query" && i !== -1 ? (a = r.substring(0, i), c = B(r.substring(i + 1, s !== -1 ? s : r.length), t), c.paramsString !== "" && (a += "?" + c.paramsString), s !== -1 && (a += r.substring(s))) : e.responseMode === "fragment" && s !== -1 && (a = r.substring(0, s), c = B(r.substring(s + 1), t), c.paramsString !== "" && (a += "#" + c.paramsString)), c && c.oauthParams) {
       if (e.flow === "standard" || e.flow === "hybrid") {
         if ((c.oauthParams.code || c.oauthParams.error) && c.oauthParams.state)
           return c.oauthParams.newUrl = a, c.oauthParams;
@@ -443,7 +443,7 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
         return c.oauthParams.newUrl = a, c.oauthParams;
     }
   }
-  function z(r, t) {
+  function B(r, t) {
     for (var i = r.split("&"), s = {
       paramsString: "",
       oauthParams: {}
@@ -453,7 +453,7 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
     }
     return s;
   }
-  function v() {
+  function w() {
     var r = {
       setSuccess: function(t) {
         r.resolve(t);
@@ -476,8 +476,8 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
       clearTimeout(s);
     });
   }
-  function x() {
-    var r = v();
+  function H() {
+    var r = w();
     if (!h.enable || h.iframe)
       return r.setSuccess(), r.promise;
     var t = document.createElement("iframe");
@@ -498,15 +498,15 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
     };
     return window.addEventListener("message", s, !1), r.promise;
   }
-  function P() {
+  function K() {
     h.enable && e.token && setTimeout(function() {
-      L().then(function(r) {
-        r && P();
+      P().then(function(r) {
+        r && K();
       });
     }, h.interval * 1e3);
   }
-  function L() {
-    var r = v();
+  function P() {
+    var r = w();
     if (h.iframe && h.iframeOrigin) {
       var t = e.clientId + " " + (e.sessionId ? e.sessionId : "");
       h.callbackList.push(r);
@@ -517,12 +517,12 @@ For more information see: https://developer.mozilla.org/en-US/docs/Web/Security/
     return r.promise;
   }
   function te() {
-    var r = v();
+    var r = w();
     if ((h.enable || e.silentCheckSsoRedirectUri) && typeof e.endpoints.thirdPartyCookiesIframe == "function") {
       var t = document.createElement("iframe");
       t.setAttribute("src", e.endpoints.thirdPartyCookiesIframe()), t.setAttribute("sandbox", "allow-storage-access-by-user-activation allow-scripts allow-same-origin"), t.setAttribute("title", "keycloak-3p-check-iframe"), t.style.display = "none", document.body.appendChild(t);
       var i = function(s) {
-        t.contentWindow === s.source && (s.data !== "supported" && s.data !== "unsupported" || (s.data === "unsupported" && (A(
+        t.contentWindow === s.source && (s.data !== "supported" && s.data !== "unsupported" || (s.data === "unsupported" && (T(
           `[KEYCLOAK] Your browser is blocking access to 3rd-party cookies, this means:
 
  - It is not possible to retrieve tokens without redirecting to the Keycloak server (a.k.a. no support for silent authentication).
@@ -536,11 +536,11 @@ For more information see: https://www.keycloak.org/securing-apps/javascript-adap
       r.setSuccess();
     return re(r.promise, e.messageReceiveTimeout, "Timeout when waiting for 3rd party check iframe message.");
   }
-  function M(r) {
+  function D(r) {
     if (!r || r == "default")
       return {
         login: async function(n) {
-          return window.location.assign(await e.createLoginUrl(n)), v().promise;
+          return window.location.assign(await e.createLoginUrl(n)), w().promise;
         },
         logout: async function(n) {
           if (((n == null ? void 0 : n.logoutMethod) ?? e.logoutMethod) === "GET") {
@@ -549,19 +549,19 @@ For more information see: https://www.keycloak.org/securing-apps/javascript-adap
           }
           const u = document.createElement("form");
           u.setAttribute("method", "POST"), u.setAttribute("action", e.createLogoutUrl(n)), u.style.display = "none";
-          const f = {
+          const p = {
             id_token_hint: e.idToken,
             client_id: e.clientId,
-            post_logout_redirect_uri: p.redirectUri(n, !1)
+            post_logout_redirect_uri: f.redirectUri(n, !1)
           };
-          for (const [d, g] of Object.entries(f)) {
-            const y = document.createElement("input");
-            y.setAttribute("type", "hidden"), y.setAttribute("name", d), y.setAttribute("value", g), u.appendChild(y);
+          for (const [d, g] of Object.entries(p)) {
+            const S = document.createElement("input");
+            S.setAttribute("type", "hidden"), S.setAttribute("name", d), S.setAttribute("value", g), u.appendChild(S);
           }
           document.body.appendChild(u), u.submit();
         },
         register: async function(n) {
-          return window.location.assign(await e.createRegisterUrl(n)), v().promise;
+          return window.location.assign(await e.createRegisterUrl(n)), w().promise;
         },
         accountManagement: function() {
           var n = e.createAccountUrl();
@@ -569,7 +569,7 @@ For more information see: https://www.keycloak.org/securing-apps/javascript-adap
             window.location.href = n;
           else
             throw "Not supported by the OIDC server";
-          return v().promise;
+          return w().promise;
         },
         redirectUri: function(n, o) {
           return n && n.redirectUri ? n.redirectUri : e.redirectUri ? e.redirectUri : location.href;
@@ -595,44 +595,44 @@ For more information see: https://www.keycloak.org/securing-apps/javascript-adap
       };
       return {
         login: async function(n) {
-          var o = v(), u = a(n), f = await e.createLoginUrl(n), d = t(f, "_blank", u), g = !1, y = !1, T = function() {
-            y = !0, d.close();
+          var o = w(), u = a(n), p = await e.createLoginUrl(n), d = t(p, "_blank", u), g = !1, S = !1, I = function() {
+            S = !0, d.close();
           };
-          return d.addEventListener("loadstart", function(S) {
-            if (S.url.indexOf(c()) == 0) {
-              var K = E(S.url);
-              U(K, o), T(), g = !0;
+          return d.addEventListener("loadstart", function(U) {
+            if (U.url.indexOf(c()) == 0) {
+              var z = E(U.url);
+              A(z, o), I(), g = !0;
             }
-          }), d.addEventListener("loaderror", function(S) {
+          }), d.addEventListener("loaderror", function(U) {
             if (!g)
-              if (S.url.indexOf(c()) == 0) {
-                var K = E(S.url);
-                U(K, o), T(), g = !0;
+              if (U.url.indexOf(c()) == 0) {
+                var z = E(U.url);
+                A(z, o), I(), g = !0;
               } else
-                o.setError(), T();
-          }), d.addEventListener("exit", function(S) {
-            y || o.setError({
+                o.setError(), I();
+          }), d.addEventListener("exit", function(U) {
+            S || o.setError({
               reason: "closed_by_user"
             });
           }), o.promise;
         },
         logout: function(n) {
-          var o = v(), u = e.createLogoutUrl(n), f = t(u, "_blank", "location=no,hidden=yes,clearcache=yes"), d;
-          return f.addEventListener("loadstart", function(g) {
-            g.url.indexOf(c()) == 0 && f.close();
-          }), f.addEventListener("loaderror", function(g) {
-            g.url.indexOf(c()) == 0 || (d = !0), f.close();
-          }), f.addEventListener("exit", function(g) {
+          var o = w(), u = e.createLogoutUrl(n), p = t(u, "_blank", "location=no,hidden=yes,clearcache=yes"), d;
+          return p.addEventListener("loadstart", function(g) {
+            g.url.indexOf(c()) == 0 && p.close();
+          }), p.addEventListener("loaderror", function(g) {
+            g.url.indexOf(c()) == 0 || (d = !0), p.close();
+          }), p.addEventListener("exit", function(g) {
             d ? o.setError() : (e.clearToken(), o.setSuccess());
           }), o.promise;
         },
         register: async function(n) {
-          var o = v(), u = await e.createRegisterUrl(), f = a(n), d = t(u, "_blank", f);
+          var o = w(), u = await e.createRegisterUrl(), p = a(n), d = t(u, "_blank", p);
           return d.addEventListener("loadstart", function(g) {
             if (g.url.indexOf(c()) == 0) {
               d.close();
-              var y = E(g.url);
-              U(y, o);
+              var S = E(g.url);
+              A(S, o);
             }
           }), o.promise;
         },
@@ -654,25 +654,25 @@ For more information see: https://www.keycloak.org/securing-apps/javascript-adap
     if (r == "cordova-native")
       return h.enable = !1, {
         login: async function(n) {
-          var o = v(), u = await e.createLoginUrl(n);
-          return universalLinks.subscribe("keycloak", function(f) {
+          var o = w(), u = await e.createLoginUrl(n);
+          return universalLinks.subscribe("keycloak", function(p) {
             universalLinks.unsubscribe("keycloak"), window.cordova.plugins.browsertab.close();
-            var d = E(f.url);
-            U(d, o);
+            var d = E(p.url);
+            A(d, o);
           }), window.cordova.plugins.browsertab.openUrl(u), o.promise;
         },
         logout: function(n) {
-          var o = v(), u = e.createLogoutUrl(n);
-          return universalLinks.subscribe("keycloak", function(f) {
+          var o = w(), u = e.createLogoutUrl(n);
+          return universalLinks.subscribe("keycloak", function(p) {
             universalLinks.unsubscribe("keycloak"), window.cordova.plugins.browsertab.close(), e.clearToken(), o.setSuccess();
           }), window.cordova.plugins.browsertab.openUrl(u), o.promise;
         },
         register: async function(n) {
-          var o = v(), u = await e.createRegisterUrl(n);
-          return universalLinks.subscribe("keycloak", function(f) {
+          var o = w(), u = await e.createRegisterUrl(n);
+          return universalLinks.subscribe("keycloak", function(p) {
             universalLinks.unsubscribe("keycloak"), window.cordova.plugins.browsertab.close();
-            var d = E(f.url);
-            U(d, o);
+            var d = E(p.url);
+            A(d, o);
           }), window.cordova.plugins.browsertab.openUrl(u), o.promise;
         },
         accountManagement: function() {
@@ -688,10 +688,10 @@ For more information see: https://www.keycloak.org/securing-apps/javascript-adap
       };
     throw "invalid adapter type: " + r;
   }
-  const I = "kc-callback-";
-  var H = function() {
-    if (!(this instanceof H))
-      return new H();
+  const L = "kc-callback-";
+  var j = function() {
+    if (!(this instanceof j))
+      return new j();
     localStorage.setItem("kc-test", "test"), localStorage.removeItem("kc-test");
     var r = this;
     function t() {
@@ -706,7 +706,7 @@ For more information see: https://www.keycloak.org/securing-apps/javascript-adap
         localStorage.removeItem(c);
     }
     function s() {
-      return Object.entries(localStorage).filter(([c]) => c.startsWith(I));
+      return Object.entries(localStorage).filter(([c]) => c.startsWith(L));
     }
     function a(c) {
       let n;
@@ -715,19 +715,19 @@ For more information see: https://www.keycloak.org/securing-apps/javascript-adap
       } catch {
         return null;
       }
-      return O(n) && "expires" in n && typeof n.expires == "number" ? n.expires : null;
+      return V(n) && "expires" in n && typeof n.expires == "number" ? n.expires : null;
     }
     r.get = function(c) {
       if (c) {
-        var n = I + c, o = localStorage.getItem(n);
+        var n = L + c, o = localStorage.getItem(n);
         return o && (localStorage.removeItem(n), o = JSON.parse(o)), t(), o;
       }
     }, r.add = function(c) {
       t();
-      const n = I + c.state, o = JSON.stringify({
+      const n = L + c.state, o = JSON.stringify({
         ...c,
         // Set the expiry time to 1 hour from now.
-        expires: Date.now() + 60 * 60 * 1e3
+        expires: Date.now() + 3600 * 1e3
       });
       try {
         localStorage.setItem(n, o);
@@ -735,18 +735,18 @@ For more information see: https://www.keycloak.org/securing-apps/javascript-adap
         i(), localStorage.setItem(n, o);
       }
     };
-  }, N = function() {
-    if (!(this instanceof N))
-      return new N();
+  }, O = function() {
+    if (!(this instanceof O))
+      return new O();
     var r = this;
     r.get = function(a) {
       if (a) {
-        var c = i(I + a);
-        if (s(I + a, "", t(-100)), c)
+        var c = i(L + a);
+        if (s(L + a, "", t(-100)), c)
           return JSON.parse(c);
       }
     }, r.add = function(a) {
-      s(I + a.state, JSON.stringify(a), t(60));
+      s(L + a.state, JSON.stringify(a), t(60));
     }, r.removeItem = function(a) {
       s(a, "", t(-100));
     };
@@ -768,45 +768,45 @@ For more information see: https://www.keycloak.org/securing-apps/javascript-adap
   };
   function ne() {
     try {
-      return new H();
+      return new j();
     } catch {
     }
-    return new N();
+    return new O();
   }
-  function Y(r) {
+  function X(r) {
     return function() {
       e.enableLogging && r.apply(console, Array.prototype.slice.call(arguments));
     };
   }
 }
-function se(k) {
-  const e = String.fromCodePoint(...k);
+function ie(l) {
+  const e = String.fromCodePoint(...l);
   return btoa(e);
 }
-async function ie(k) {
-  const p = new TextEncoder().encode(k);
+async function ce(l) {
+  const f = new TextEncoder().encode(l);
   if (typeof crypto > "u" || typeof crypto.subtle > "u")
     throw new Error("Web Crypto API is not available.");
-  return await crypto.subtle.digest("SHA-256", p);
+  return await crypto.subtle.digest("SHA-256", f);
 }
-function D(k) {
-  const [e, p] = k.split(".");
-  if (typeof p != "string")
+function J(l) {
+  const [e, f] = l.split(".");
+  if (typeof f != "string")
     throw new Error("Unable to decode token, payload not found.");
-  let m;
+  let k;
   try {
-    m = ce(p);
-  } catch (l) {
-    throw new Error("Unable to decode token, payload is not a valid Base64URL value.", { cause: l });
+    k = ue(f);
+  } catch (m) {
+    throw new Error("Unable to decode token, payload is not a valid Base64URL value.", { cause: m });
   }
   try {
-    return JSON.parse(m);
-  } catch (l) {
-    throw new Error("Unable to decode token, payload is not a valid JSON value.", { cause: l });
+    return JSON.parse(k);
+  } catch (m) {
+    throw new Error("Unable to decode token, payload is not a valid JSON value.", { cause: m });
   }
 }
-function ce(k) {
-  let e = k.replaceAll("-", "+").replaceAll("_", "/");
+function ue(l) {
+  let e = l.replaceAll("-", "+").replaceAll("_", "/");
   switch (e.length % 4) {
     case 0:
       break;
@@ -820,145 +820,158 @@ function ce(k) {
       throw new Error("Input is not of the correct length.");
   }
   try {
-    return ue(e);
+    return le(e);
   } catch {
     return atob(e);
   }
 }
-function ue(k) {
-  return decodeURIComponent(atob(k).replace(/(.)/g, (e, p) => {
-    let m = p.charCodeAt(0).toString(16).toUpperCase();
-    return m.length < 2 && (m = "0" + m), "%" + m;
+function le(l) {
+  return decodeURIComponent(atob(l).replace(/(.)/g, (e, f) => {
+    let k = f.charCodeAt(0).toString(16).toUpperCase();
+    return k.length < 2 && (k = "0" + k), "%" + k;
   }));
 }
-function O(k) {
-  return typeof k == "object" && k !== null;
+function V(l) {
+  return typeof l == "object" && l !== null;
 }
-const le = {};
-class j extends q {
-  constructor() {
-    const { VITE_KEYCLOAK_REALM: e, VITE_KEYCLOAK_HOST: p, VITE_KEYCLOAK_CLIENT_ID: m } = le;
-    super({
-      url: p,
-      realm: e,
-      clientId: m
-    });
+class Y extends $ {
+  constructor(e) {
+    super(e);
   }
   async initialize() {
     try {
-      await this.init(
-        {
-          onLoad: "login-required"
-        }
-      ) && console.log("User is authenticated"), console.log("User is not authenticated");
+      const e = await this.init({
+        onLoad: "login-required"
+      });
+      console.log(e ? "User is authenticated" : "User is not authenticated");
     } catch (e) {
       console.error("Failed to initialize adapter:", e);
     }
   }
-  static async init() {
-    const e = new j();
-    return await e.initialize(), e;
+  static async init(e) {
+    const f = new Y(e);
+    return console.log("KeycloakAdapter", e), await f.initialize(), f;
   }
   get userInfo() {
     return this.idTokenParsed;
   }
   updateToken() {
-    return this.updateToken(30);
+    return console.log("update the token"), super.updateToken(30);
   }
   get isAuthenticated() {
     return this.authenticated ?? !1;
   }
 }
-const de = "GHENT_CDH_AUTH_STORE", fe = G(de, () => {
-  const k = oe(!1), e = F(), p = F(!1);
-  return j.init().then((l) => (k.value = l.isAuthenticated, e.value = l, p.value = !0, l)), {
-    token: () => {
-      var l;
-      return (l = e.value) == null ? void 0 : l.token;
+const de = {
+  skipAuthentication: !1
+}, pe = (l) => {
+  const e = oe(!1);
+  let f;
+  const k = { ...de, ...l }, m = async () => {
+    const v = await Y.init(l.keycloak);
+    return f = v, e.value = !0, v;
+  }, h = () => f == null ? void 0 : f.token, y = async () => {
+    if (!f)
+      return m();
+    e.value || await new Promise((v) => {
+      const M = se(e, (N) => {
+        N && (M(), v());
+      });
+    });
+  }, C = ae({
+    install(v) {
+      v.runWithContext(() => {
+        v.config.globalProperties.$auth = k, v.provide(F, C);
+      });
     },
-    user: () => {
-      var l;
-      return (l = e.value) == null ? void 0 : l.userInfo;
+    updateToken: async () => {
+      var v;
+      return (v = await y()) == null ? void 0 : v.updateToken();
     },
-    isAuthenticated: () => {
-      var l;
-      return (l = e.value) == null ? void 0 : l.isAuthenticated;
+    token: h,
+    user: async () => {
+      var v;
+      return (v = await y()) == null ? void 0 : v.userInfo;
     },
-    logout: () => {
-      console.warn("logout");
+    logout: async () => {
+      var v;
+      return (v = await y()) == null ? void 0 : v.logout();
     },
-    updateToken: async () => {
-      var l;
-      return p.value || await new Promise((h) => {
-        const b = ae(p, (w) => {
-          w && (b(), h());
-        });
-      }), (l = e.value) == null ? void 0 : l.updateToken();
-    }
-  };
-}), pe = "GHENT_CDH_HTTP_REQUEST", ke = G(pe, () => {
-  const k = fe(), e = async (p, m, l = { contentType: "application/json" }) => {
-    const h = {
+    options: k
+  });
+  return C;
+}, he = () => {
+  const l = W(F);
+  l || console.warn("No auth provided, authorized calls may not work");
+  const e = async (f, k, m = { contentType: "application/json" }) => {
+    const h = (m == null ? void 0 : m.skipAuth) ?? (l == null ? void 0 : l.options.skipAuthentication), y = {
       accept: "application/json",
-      ...m.headers ?? {}
+      ...k.headers ?? {}
     };
-    l.contentType && (h["Content-Type"] = l.contentType), l != null && l.skipAuth || (await k.updateToken(), h.Authorization = `Bearer ${k.token()}`);
-    const b = new URL(p, window.location.href);
-    if (l != null && l.queryParams)
-      for (const [A, R] of Object.entries(l.queryParams))
-        b.searchParams.set(A, R);
-    const w = await fetch(b.toString(), {
-      ...m,
-      headers: h
+    m.contentType && (y["Content-Type"] = m.contentType), h || (await (l == null ? void 0 : l.updateToken()), y.Authorization = `Bearer ${l == null ? void 0 : l.token()}`);
+    const b = new URL(f, window.location.href);
+    if (m != null && m.queryParams)
+      for (const [R, C] of Object.entries(m.queryParams))
+        b.searchParams.set(R, C);
+    const T = await fetch(b.toString(), {
+      ...k,
+      headers: y
     });
-    return w.ok ? w.json() : (l != null && l.skipAuth, Promise.reject({
-      content: w.body,
-      status: w.status
+    return T.ok ? T.json() : (m != null && m.skipAuth, Promise.reject({
+      content: T.body,
+      status: T.status
     }));
   };
   return {
-    get: (p, m) => e(p, { method: "GET" }, m),
-    postFile: (p, m, l = {}, h) => {
-      const b = new FormData();
-      for (const w in l)
-        b.append(w, l[w]);
-      return b.append("file", m), e(
-        p,
+    get: (f, k) => e(f, { method: "GET" }, k),
+    postFile: (f, k, m = {}, h) => {
+      const y = new FormData();
+      for (const b in m)
+        y.append(b, m[b]);
+      return y.append("file", k), e(
+        f,
         {
           method: "POST",
-          body: b
+          body: y
         },
         { ...h, contentType: void 0 }
       );
     },
-    post: (p, m, l) => e(
-      p,
+    post: (f, k, m) => e(
+      f,
       {
         method: "POST",
-        body: JSON.stringify(m)
+        body: JSON.stringify(k)
       },
-      l
+      m
     ),
-    patch: (p, m, l) => e(
-      p,
+    patch: (f, k, m) => e(
+      f,
       {
         method: "PATCH",
-        body: JSON.stringify(m)
+        body: JSON.stringify(k)
       },
-      l
+      m
     ),
-    delete: (p, m, l) => e(
-      p,
+    delete: (f, k, m) => e(
+      f,
       {
         method: "DELETE",
-        body: JSON.stringify(m)
+        body: JSON.stringify(k)
       },
-      l
+      m
     )
   };
-});
+}, me = () => {
+  const l = W(F);
+  return l || console.warn("No auth provided, authorized calls may not work"), {
+    isAuthenticated: () => !!(l != null && l.user()),
+    getUser: () => l == null ? void 0 : l.user(),
+    logout: () => l == null ? void 0 : l.logout()
+  };
+};
 export {
-  j as KeycloakAdapter,
-  fe as useAuthenticationStore,
-  ke as useHttpStore
+  pe as createAuth,
+  me as useAuthenticate,
+  he as useHttpRequest
 };

package/lib/auth.const.d.ts

@@ -0,0 +1,16 @@
+import { App } from 'vue';
+import { KeycloakConfig } from './keycloak.adapter';
+export declare const auth_symbol = "GHENTCDH_AUTHENTICATION";
+export type AuthOptions = {
+    skipAuthentication?: boolean;
+    keycloak: KeycloakConfig;
+};
+export interface Auth {
+    install: (app: App) => void;
+    updateToken: () => Promise<void>;
+    token: () => string;
+    user: () => Promise<any>;
+    logout: () => Promise<any>;
+    isAuthenticated: () => Promise<boolean>;
+    options: AuthOptions;
+}

package/lib/createAuth.d.ts

@@ -0,0 +1,2 @@
+import { Auth, AuthOptions } from './auth.const';
+export declare const createAuth: (options: AuthOptions) => import('vue').Raw<Auth>;

package/lib/keycloak.adapter.d.ts

@@ -1,8 +1,13 @@
 import { default as Keycloak } from 'keycloak-js';
+export type KeycloakConfig = {
+    realm: string;
+    url: string;
+    clientId: string;
+};
 export declare class KeycloakAdapter extends Keycloak {
     private constructor();
     private initialize;
-    static init(): Promise<KeycloakAdapter>;
+    static init(config: KeycloakConfig): Promise<KeycloakAdapter>;
     get userInfo(): any;
     updateToken(): any;
     get isAuthenticated(): any;

package/lib/request.d.ts

@@ -0,0 +1,13 @@
+type RequestOptions = {
+    skipAuth?: boolean;
+    queryParams?: Record<string, any>;
+    contentType?: string;
+};
+export declare const useHttpRequest: () => {
+    get: <T>(url: string, options?: RequestOptions) => Promise<T>;
+    postFile: <T>(url: string, file: File, data?: any, options?: RequestOptions) => Promise<T>;
+    post: <T>(url: string, data: any, options?: RequestOptions) => Promise<T>;
+    patch: <T>(url: string, data: any, options?: RequestOptions) => Promise<T>;
+    delete: <T>(url: string, data?: any, options?: RequestOptions) => Promise<T>;
+};
+export {};

package/lib/utils.d.ts

@@ -0,0 +1,5 @@
+export declare const useAuthenticate: () => {
+    isAuthenticated: () => boolean;
+    getUser: () => Promise<any>;
+    logout: () => Promise<any>;
+};

package/package.json

@@ -1,12 +1,11 @@
 {
   "name": "@ghentcdh/authentication-vue",
   "license": "MIT",
-  "version": "0.0.2-9",
+  "version": "0.1.0",
   "main": "./index.js",
   "types": "./index.d.ts",
   "dependencies": {
     "vue": "^3.5.13",
-    "pinia": "^3.0.1",
     "keycloak-js": "^26.1.2"
   },
   "exports": {

package/lib/authentication.store.d.ts

@@ -1,19 +0,0 @@
-export declare const useAuthenticationStore: import('pinia').StoreDefinition<"GHENT_CDH_AUTH_STORE", Pick<{
-    token: () => any;
-    user: () => any;
-    isAuthenticated: () => any;
-    logout: () => void;
-    updateToken: () => Promise<any>;
-}, never>, Pick<{
-    token: () => any;
-    user: () => any;
-    isAuthenticated: () => any;
-    logout: () => void;
-    updateToken: () => Promise<any>;
-}, never>, Pick<{
-    token: () => any;
-    user: () => any;
-    isAuthenticated: () => any;
-    logout: () => void;
-    updateToken: () => Promise<any>;
-}, "token" | "user" | "isAuthenticated" | "logout" | "updateToken">>;

package/lib/request.store.d.ts

@@ -1,25 +0,0 @@
-type RequestOptions = {
-    skipAuth?: boolean;
-    queryParams?: Record<string, any>;
-    contentType?: string;
-};
-export declare const useHttpStore: import('pinia').StoreDefinition<"GHENT_CDH_HTTP_REQUEST", Pick<{
-    get: <T>(url: string, options?: RequestOptions) => Promise<T>;
-    postFile: <T>(url: string, file: File, data?: any, options?: RequestOptions) => Promise<T>;
-    post: <T>(url: string, data: any, options?: RequestOptions) => Promise<T>;
-    patch: <T>(url: string, data: any, options?: RequestOptions) => Promise<T>;
-    delete: <T>(url: string, data?: any, options?: RequestOptions) => Promise<T>;
-}, never>, Pick<{
-    get: <T>(url: string, options?: RequestOptions) => Promise<T>;
-    postFile: <T>(url: string, file: File, data?: any, options?: RequestOptions) => Promise<T>;
-    post: <T>(url: string, data: any, options?: RequestOptions) => Promise<T>;
-    patch: <T>(url: string, data: any, options?: RequestOptions) => Promise<T>;
-    delete: <T>(url: string, data?: any, options?: RequestOptions) => Promise<T>;
-}, never>, Pick<{
-    get: <T>(url: string, options?: RequestOptions) => Promise<T>;
-    postFile: <T>(url: string, file: File, data?: any, options?: RequestOptions) => Promise<T>;
-    post: <T>(url: string, data: any, options?: RequestOptions) => Promise<T>;
-    patch: <T>(url: string, data: any, options?: RequestOptions) => Promise<T>;
-    delete: <T>(url: string, data?: any, options?: RequestOptions) => Promise<T>;
-}, "get" | "postFile" | "post" | "patch" | "delete">>;
-export {};